Senior threat researcher

Jonny Johnson

Jonny is a security enthusiast who loves spending time with all things related to Windows Internals, reverse engineering, and data analysis. After working as a detection engineer, Jonny now applies his defensive and low-level knowledge to threat research, arming defenders with the information and tools needed to cover defensive gaps. Jonny loves to share his actionable findings in blogs and is committed to helping defenders be effective, independent, and efficient.
Better know a data source: Access tokens (and why they’re hard to get)
Better know a data source: Process integrity levels
The dark side of Microsoft Remote Procedure Call protocols